$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa File: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (raw, json) Hash identifier: rqdaT3dhU4vRh0lUQmFU0b1pAjqoq7sorljrl78YDwk= Subject key identifier: C8:96:DA:FD:26:08:E5:D2:D1:13:FA:4F:27:09:14:63:B4:A2:30:9D Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 3BB937EC7A738890030F533B8153D5464932E938 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa Signing time: Mon 01 Jul 2024 10:01:10 +0000 ROA not before: Mon 01 Jul 2024 09:56:10 +0000 ROA not after: Mon 30 Jun 2025 10:01:10 +0000 asID: 134623 IP address blocks: 103.197.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b9:37:ec:7a:73:88:90:03:0f:53:3b:81:53:d5:46:49:32:e9:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jul 1 09:56:10 2024 GMT Not After : Jun 30 10:01:10 2025 GMT Subject: CN=C896DAFD2608E5D2D113FA4F27091463B4A2309D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:f2:a0:86:7f:3d:5b:fb:80:0d:f1:fe:46: 67:f4:ce:05:67:1b:0f:d1:14:24:80:6a:52:86:d7: 71:83:34:c8:96:a0:13:0c:d2:4b:8f:3f:a7:68:bb: 68:54:f8:1e:96:74:aa:35:0c:d1:7a:4d:bf:e1:e1: 0c:bb:52:f1:ee:17:18:51:61:a1:63:66:25:44:bc: 35:96:01:e4:15:e7:4c:2a:1b:71:1a:5b:26:5d:70: 49:84:32:02:b6:8c:4e:54:fb:fa:79:dd:27:fc:57: fd:a2:5f:3b:b4:cf:85:3e:3f:a4:70:15:66:dc:72: c7:39:d6:8b:47:2b:8a:dd:7a:1a:d3:0f:4d:88:73: 6a:3d:b5:48:8b:99:c9:ea:6a:0c:db:44:31:1b:7e: c2:ad:ef:d4:79:d3:17:a1:9a:e2:4c:a6:42:f2:02: 42:f8:55:73:3c:7d:e9:12:9b:44:69:b2:61:ca:35: 29:c1:3d:24:ed:d4:2e:7d:f7:b0:93:f2:b3:b1:4a: 4b:df:19:c7:4b:60:47:bb:e4:34:83:f1:00:19:84: 43:d2:18:b0:a8:7f:1e:75:55:91:03:dc:05:fb:83: e3:82:43:9b:be:24:f7:94:3e:23:8e:e6:83:8a:fa: 78:71:da:42:9f:33:88:5e:e0:f7:ca:bc:6f:f9:fe: b9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:96:DA:FD:26:08:E5:D2:D1:13:FA:4F:27:09:14:63:B4:A2:30:9D X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.95.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:f2:c4:3e:11:2f:d6:8d:fb:2c:f6:80:0e:b8:36:28:01:9e: 87:00:b5:98:e8:36:fc:23:47:80:76:c8:64:13:43:e8:6d:66: 6a:75:7b:03:c4:aa:1a:f8:21:f2:4a:9d:f9:46:a4:64:aa:d5: e5:99:e3:48:f1:e7:35:01:c0:f7:a5:31:2f:f5:f6:db:7e:4a: e8:40:7c:c4:e1:35:fa:08:c4:66:d5:ca:7b:0e:7a:f6:e0:d3: 1c:58:a1:f1:d5:0b:50:ef:a7:79:f6:f1:e8:96:a5:64:b3:22: 24:2f:d9:b3:b1:b7:c1:d9:7d:a4:0f:13:28:41:a1:5a:1f:ee: 87:9c:df:dc:19:d0:fb:1b:04:1c:56:c5:cf:fc:dd:df:83:de: a8:58:54:a9:e5:a7:79:73:7c:35:ea:ca:24:6a:5f:c2:7d:65: a2:b3:6e:49:52:29:23:a5:cd:95:dc:56:55:17:d2:a7:9f:de: cc:ea:ed:e3:95:99:af:db:4e:be:79:fe:a1:f1:87:2b:55:f1: 1b:90:73:99:32:41:e7:56:ab:31:9a:4a:cd:13:d1:a4:3f:c4: 1d:dd:c3:64:93:31:e9:e9:1c:a8:db:b7:c9:72:28:fd:d7:21: c1:b0:1f:b4:df:78:12:fd:88:48:9e:3b:91:01:5d:98:f9:0c: 37:36:28:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO7k37HpziJADD1M7gVPVRkky6TgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNDA3MDEwOTU2MTBaFw0yNTA2MzAxMDAxMTBaMDMxMTAvBgNV BAMTKEM4OTZEQUZEMjYwOEU1RDJEMTEzRkE0RjI3MDkxNDYzQjRBMjMwOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsRfKghn89W/uADfH+Rmf0zgVn Gw/RFCSAalKG13GDNMiWoBMM0kuPP6dou2hU+B6WdKo1DNF6Tb/h4Qy7UvHuFxhR YaFjZiVEvDWWAeQV50wqG3EaWyZdcEmEMgK2jE5U+/p53Sf8V/2iXzu0z4U+P6Rw FWbccsc51otHK4rdehrTD02Ic2o9tUiLmcnqagzbRDEbfsKt79R50xehmuJMpkLy AkL4VXM8fekSm0RpsmHKNSnBPSTt1C5997CT8rOxSkvfGcdLYEe75DSD8QAZhEPS GLCofx51VZED3AX7g+OCQ5u+JPeUPiOO5oOK+nhx2kKfM4he4PfKvG/5/rkDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyJba/SYI5dLRE/pPJwkUY7SiMJ0wHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlZDEwMGRmLTA0NDEtNDM4MS1h M2ZhLTU4N2RiOWU5YzJmMC8wLzMxMzAzMzJlMzEzOTM3MmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8VfMA0GCSqG SIb3DQEBCwUAA4IBAQBL8sQ+ES/Wjfss9oAOuDYoAZ6HALWY6Db8I0eAdshkE0Po bWZqdXsDxKoa+CHySp35RqRkqtXlmeNI8ec1AcD3pTEv9fbbfkroQHzE4TX6CMRm 1cp7Dnr24NMcWKHx1QtQ76d59vHolqVksyIkL9mzsbfB2X2kDxMoQaFaH+6HnN/c GdD7GwQcVsXP/N3fg96oWFSp5ad5c3w16sokal/CfWWis25JUikjpc2V3FZVF9Kn n97M6u3jlZmv206+ef6h8YcrVfEbkHOZMkHnVqsxmkrNE9GkP8Qd3cNkkzHp6Ryo 27fJcij91yHBsB+033gS/YhInjuRAV2Y+Qw3NiiJ -----END CERTIFICATE-----Generated at Sun Nov 24 04:28:51 2024 by rpki-client on console-fra.rpki-client.org